mirror of
https://github.com/cuberite/polarssl.git
synced 2025-09-22 12:00:35 -04:00
Add tests for bug in mbedtls_x509_string_to_names()
The commented out tests cause crashes (in different ways) until the bug is fixed; the first two test are passing already and are here mostly to provide a reference point. The bug report was using programs/x509/cert_write, but string_to_names() is what it was really targetting, which is better for automated tests. The strings used are a minor adapation of those from the report. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
This commit is contained in:
parent
a4ffc4e4c6
commit
5989da22a9
@ -254,6 +254,27 @@ mbedtls_x509_string_to_names:"C=NL, O=Of\\CCspark, OU=PolarSSL":"C=NL, O=Of\\CCs
|
||||
X509 String to Names #20 (Reject empty AttributeValue)
|
||||
mbedtls_x509_string_to_names:"C=NL, O=, OU=PolarSSL":"":MBEDTLS_ERR_X509_INVALID_NAME:0
|
||||
|
||||
# Note: the behaviour is incorrect, output from string->names->string should be
|
||||
# the same as the input, rather than just the last component, see
|
||||
# https://github.com/Mbed-TLS/mbedtls/issues/10189
|
||||
# Still including tests for the current incorrect behaviour because of the
|
||||
# variants below where we want to ensure at least that no memory corruption
|
||||
# happens (which would be a lot worse than just a functional bug).
|
||||
X509 String to Names (repeated OID)
|
||||
mbedtls_x509_string_to_names:"CN=ab,CN=cd,CN=ef":"CN=ef":0:0
|
||||
|
||||
# Note: when a value starts with a # sign, it's treated as the hex encoding of
|
||||
# the DER encoding of the value. Here, 0400 is a zero-length OCTET STRING.
|
||||
# The tag actually doesn't matter for our purposes, only the length.
|
||||
X509 String to Names (repeated OID, 1st is zero-length)
|
||||
mbedtls_x509_string_to_names:"CN=#0400,CN=cd,CN=ef":"CN=ef":0:0
|
||||
|
||||
#X509 String to Names (repeated OID, middle is zero-length)
|
||||
#mbedtls_x509_string_to_names:"CN=ab,CN=#0400,CN=ef":"CN=ef":0:0
|
||||
|
||||
#X509 String to Names (repeated OID, last is zero-length)
|
||||
#mbedtls_x509_string_to_names:"CN=ab,CN=cd,CN=#0400":"CN=ef":0:0
|
||||
|
||||
X509 Round trip test (Escaped characters)
|
||||
mbedtls_x509_string_to_names:"CN=Lu\\C4\\8Di\\C4\\87, O=Offspark, OU=PolarSSL":"CN=Lu\\C4\\8Di\\C4\\87, O=Offspark, OU=PolarSSL":0:0
|
||||
|
||||
|
Loading…
x
Reference in New Issue
Block a user